Forty-one Android apps infected with malicious software were removed from the Google Play Store on Thursday, but cybersecurity experts believe that up to 36.5 million people may have downloaded the "auto-clicking adware."Dubbed "Judy," the malware was published by South Korean gaming studio Kiniwini under the name ENISTUDIO Corp. It's unclear how the malicious code got there - criminal third parties or the company itself. According to Tel Aviv-based cybersecurity company Check Point, the apps have been available in Google's Play Store for years, though the length of infection hasn't been determined."These apps also had a large amount of downloads between four and 18 million, meaning the total spread of the malware may have reached between 8.5 and 36.5 million users," the company explained Thursday."The malware uses infected devices to generate large amounts of fraudulent clicks on advertisements, generating revenues for the perpetrators behind it," Checkpoint added. Applications infiltrated with malware are becoming problematic for Android app developers and consumers. As of last spring, an estimated 1.3 to 1.4 billion people owned Android phones, which are easier to infiltrate than iOS-based devices. The Google-developed operating system is "more open and adaptable," said security software company Sophos.
Apps featured in Apple's iOS store have gone through an in-depth examination. The thorough vetting process blocks "widespread malware infection" among iPhone users, though malicious software targeting Apple devices is on the rise, according to a report from SIXGILL.Earlier this month, Google revealed "Play Protect," a service that scans Android devices "around the clock" to ensure proper protection.
A full list of the apps' package names and upload dates be seen here.The following apps were infected:
Animal Judy: Persian Cat CareFashion Judy: Pretty RapperFashion Judy: Teacher StyleAnimal Judy: Dragon CareChef Judy: Halloween CookiesFashion Judy: Wedding PartyAnimal Judy: Teddy Bear CareFashion Judy: Bunny Girl StyleFashion Judy: Frozen PrincessChef Judy: Triangular KimbapChef Judy: Udong Maker – CookFashion Judy: Uniform StyleAnimal Judy: Rabbit CareFashion Judy: Vampire StyleAnimal Judy: Nine-Tailed FoxChef Judy: Jelly Maker – CookChef Judy: Chicken MakerAnimal Judy: Sea Otter CareAnimal Judy: Elephant CareJudy’s Happy HouseChef Judy: Hot Dog Maker – CookChef Judy: Birthday Food MakerFashion Judy: Wedding DayFashion Judy: Waitress StyleChef Judy: Character LunchChef Judy: Picnic Lunch MakerAnimal Judy: Rudolph CareJudy’s Hospital: PediatricsFashion Judy: Country StyleAnimal Judy: Feral Cat CareFashion Judy: Twice StyleFashion Judy: Myth StyleAnimal Judy: Fennec Fox CareAnimal Judy: Dog CareFashion Judy: Couple StyleAnimal Judy: Cat CareFashion Judy: Halloween StyleFashion Judy: EXO StyleChef Judy: Dalgona MakerChef Judy: Service Station FoodJudy’s Spa Salon

Forty-one Android apps infected with malicious software were removed from the Google Play Store on Thursday, but cybersecurity experts believe that up to 36.5 million people may have downloaded the "auto-clicking adware."

Advertisement

Related Content

Dubbed "Judy," the malware was published by South Korean gaming studio Kiniwini under the name ENISTUDIO Corp. It's unclear how the malicious code got there - criminal third parties or the company itself.

According to Tel Aviv-based cybersecurity company Check Point, the apps have been available in Google's Play Store for years, though the length of infection hasn't been determined.

"These apps also had a large amount of downloads between four and 18 million, meaning the total spread of the malware may have reached between 8.5 and 36.5 million users," the company explained Thursday.

"The malware uses infected devices to generate large amounts of fraudulent clicks on advertisements, generating revenues for the perpetrators behind it," Checkpoint added.

Applications infiltrated with malware are becoming problematic for Android app developers and consumers. As of last spring, an estimated 1.3 to 1.4 billion people owned Android phones, which are easier to infiltrate than iOS-based devices. The Google-developed operating system is "more open and adaptable," said security software company Sophos.

Apps featured in Apple's iOS store have gone through an in-depth examination. The thorough vetting process blocks "widespread malware infection" among iPhone users, though malicious software targeting Apple devices is on the rise, according to a report from SIXGILL.